Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jJcDVm3iOLnYFkEYSMUtwVBTgWA.roa
File: jJcDVm3iOLnYFkEYSMUtwVBTgWA.roa (raw, json)
Hash identifier: YMVRJd57hAaUb9MexFSHh1nrncPhKCRULW3uz1v6OiI=
Subject key identifier: 8C:97:03:56:6D:E2:38:B9:D8:16:41:18:48:C5:2D:C1:50:53:81:60
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0CC4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jJcDVm3iOLnYFkEYSMUtwVBTgWA.roa
Signing time: Tue 01 Mar 2022 07:51:40 +0000
ROA not before: Tue 01 Mar 2022 07:51:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17651
IP address blocks: 150.116.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3268 (0xcc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Mar 1 07:51:40 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8C9703566DE238B9D816411848C52DC150538160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:99:e5:e0:c8:65:56:79:7f:a1:fe:a2:12:82:
ea:bf:6c:84:40:37:24:ca:11:74:ef:db:82:a5:82:
b2:45:bc:dd:fb:d6:e1:02:a5:69:31:e8:ec:fc:f4:
bb:a7:08:1d:f3:5c:2d:25:71:1f:01:65:f0:1b:44:
28:93:e8:5c:96:cd:64:9c:f4:2d:92:db:f7:5b:98:
80:e6:f5:f0:cf:64:72:a9:09:30:8d:55:ff:28:64:
03:d4:91:82:98:16:2c:89:78:43:8f:91:ad:c5:19:
72:08:f8:d4:26:81:3a:8e:99:b2:fa:6b:16:25:ec:
a2:d0:71:7e:2a:01:d3:7e:28:9e:d5:92:c8:8b:1b:
d9:e1:2e:2a:97:46:7a:97:30:c7:88:31:82:c4:46:
04:75:4f:5d:37:7c:a5:b8:2b:e4:ef:6b:ac:fa:79:
b5:0e:e7:6a:30:c9:7f:73:c4:9d:32:4a:68:20:81:
fb:2f:48:6d:66:d2:bb:bb:06:a8:6e:e1:07:5e:35:
79:23:49:ba:21:d1:cd:96:b7:63:54:37:d5:2f:d8:
1b:15:10:01:be:66:0d:5d:b3:42:3b:8a:5f:24:fe:
91:b6:43:65:55:14:18:0b:ee:6c:8c:e9:bf:24:02:
80:40:d7:5f:60:d7:36:bd:a2:1e:02:ca:eb:3a:de:
76:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:97:03:56:6D:E2:38:B9:D8:16:41:18:48:C5:2D:C1:50:53:81:60
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jJcDVm3iOLnYFkEYSMUtwVBTgWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.52.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:c7:23:5b:02:c6:b9:b1:28:6d:b0:14:33:03:4b:c5:ea:39:
2b:08:bd:85:82:e7:a8:85:f1:3d:a8:51:36:34:cf:e4:51:a6:
33:26:41:30:39:41:d4:72:06:77:ba:9b:7c:a6:11:49:59:05:
a9:e2:ca:cc:aa:32:c6:2d:2a:b4:f5:84:1c:da:97:33:93:06:
4a:cf:a8:53:f8:9c:7a:bd:10:bf:e9:d8:0e:dd:8d:93:65:0e:
76:8a:f1:96:d4:f6:04:67:d4:75:e9:af:f8:f4:29:ab:e6:08:
57:ca:c9:91:2d:b2:80:c8:b3:7c:6b:26:66:57:b7:97:c7:c1:
34:82:26:d9:27:bf:3a:6d:fe:8a:89:96:13:15:71:ed:66:90:
97:ae:9d:8f:17:46:4e:7e:ed:b5:20:48:f7:b0:56:bf:17:f8:
97:a3:5f:7e:43:d1:90:fd:28:4c:4e:3d:95:70:74:e5:21:62:
63:86:b2:45:ef:f1:0c:db:a9:e5:ee:73:fb:75:c5:10:77:61:
df:0d:36:24:4e:02:f7:41:c1:76:c8:48:52:ea:86:81:b6:63:
ee:74:f6:0a:7b:ca:c5:1d:f8:ca:b4:08:07:34:f3:ce:eb:11:
82:32:dc:66:dc:ea:98:84:66:07:ea:c9:41:6d:08:ab:55:8b:
72:d3:b7:85
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjAzMDEw
NzUxNDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhDOTcwMzU2NkRFMjM4
QjlEODE2NDExODQ4QzUyREMxNTA1MzgxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnmeXgyGVWeX+h/qISguq/bIRANyTKEXTv24KlgrJFvN371uEC
pWkx6Oz89LunCB3zXC0lcR8BZfAbRCiT6FyWzWSc9C2S2/dbmIDm9fDPZHKpCTCN
Vf8oZAPUkYKYFiyJeEOPka3FGXII+NQmgTqOmbL6axYl7KLQcX4qAdN+KJ7VksiL
G9nhLiqXRnqXMMeIMYLERgR1T103fKW4K+Tva6z6ebUO52owyX9zxJ0ySmgggfsv
SG1m0ru7Bqhu4QdeNXkjSboh0c2Wt2NUN9Uv2BsVEAG+Zg1ds0I7il8k/pG2Q2VV
FBgL7myM6b8kAoBA119g1za9oh4Cyus63nbFAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUjJcDVm3iOLnYFkEYSMUtwVBTgWAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9qSmNEVm0zaU9MbllG
a0VZU01VdHdWQlRnV0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnQ0MA0GCSqGSIb3DQEBCwUAA4IBAQCdxyNbAsa5sShtsBQzA0vF6jkrCL2F
gueohfE9qFE2NM/kUaYzJkEwOUHUcgZ3upt8phFJWQWp4srMqjLGLSq09YQc2pcz
kwZKz6hT+Jx6vRC/6dgO3Y2TZQ52ivGW1PYEZ9R16a/49Cmr5ghXysmRLbKAyLN8
ayZmV7eXx8E0gibZJ786bf6KiZYTFXHtZpCXrp2PF0ZOfu21IEj3sFa/F/iXo19+
Q9GQ/ShMTj2VcHTlIWJjhrJF7/EM26nl7nP7dcUQd2HfDTYkTgL3QcF2yEhS6oaB
tmPudPYKe8rFHfjKtAgHNPPO6xGCMtxm3OqYhGYH6slBbQirVYty07eF
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:18 2025 by rpki-client